SECURE NEXUS LTD

Vulnerability Scanning

Our vulnerability scanning service helps organisations identify and assess security weaknesses in their IT infrastructure, applications, and networks. By conducting automated scans and analysis, we pinpoint vulnerabilities and provide actionable insights to mitigate risks and enhance overall cybersecurity posture.

Features

• Automated Scanning
• Comprehensive Coverage
• Scheduled Scans
• Customizable Scanning
• Asset Discovery
• Cloud and On-Premises Suppor
• Scalability

Benefits

• Enhanced Security Posture
• Compliance Assurance
• Cost Savings
• Risk Prioritisation
• Improved Visibility
• Scalability

£200 a user a year

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rsetchfield@securenexus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

938416930702685

Contact

Raymond Setchfield
07973573734
rsetchfield@securenexus.co.uk

Planning

• Planning service: Yes
• How the planning service works: In aiding buyers with implementing Nessus vulnerability scanning for cloud hosting or software services, we follow a strategic approach to ensure effective planning and deployment. Initially, we conduct a comprehensive assessment of the buyer's infrastructure, applications, and security requirements. Leveraging this insight, we collaboratively design a customised implementation plan tailored to their environment and objectives.; ; This plan entails defining scanning objectives, identifying assets to be scanned, and establishing scanning schedules aligned with business needs. We assist in selecting the appropriate scanning options, such as authenticated or unauthenticated scans, and configuring scan parameters to ensure thorough coverage while minimising disruption.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: In assisting buyers with migrating to the cloud or transitioning between cloud services using Nessus vulnerability scanning, we employ a systematic approach to ensure a smooth and secure transition. Our process begins with a thorough assessment of the buyer's current infrastructure, applications, and security posture.; ; Leveraging this understanding, we collaborate closely with the buyer to design and implement a tailored migration or transition plan that aligns with their needs and security considerations. This plan includes identifying assets to be migrated, assessing potential risks and vulnerabilities, and defining scanning schedules to ensure continuous monitoring during the migration process.; ; Throughout the migration or transition process, we prioritize risk assessment and mitigation, identifying and remediating vulnerabilities to minimize security risks. We provide guidance on integrating Nessus with cloud environments and optimizing scanning configurations to align with cloud-specific requirements.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: In ensuring the quality assurance (QA) and performance testing of Nessus vulnerability scans, we adopt a meticulous approach to validate the effectiveness and reliability of our solutions. Our process begins with a comprehensive assessment of the buyer's scanning requirements, infrastructure, and compliance standards.; ; Leveraging this understanding, we design and execute comprehensive test scenarios and strategies tailored to their environment. These scenarios encompass functional testing to validate the accuracy and thoroughness of vulnerability detection, as well as performance testing to evaluate the responsiveness and scalability of Nessus scans under different conditions and workloads.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications: Other
• Other security testing certifications:
  • Certified Ethical Hacker v11
  • CISSP

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: In supporting cloud hosting or software services with Nessus vulnerability scanning, we offer comprehensive assistance to ensure robust security in cloud environments. Our approach begins with a thorough assessment of the buyer's cloud infrastructure, applications, and security requirements.; ; Leveraging this understanding, we collaboratively design and implement Nessus scans tailored to the cloud environment. This includes configuring scanning parameters to align with cloud-specific requirements and identifying assets to be scanned.; ; Throughout the deployment process, we prioritise risk assessment and mitigation, identifying potential vulnerabilities and developing strategies to address them proactively. Thorough testing and validation are conducted to ensure seamless integration and compatibility with cloud hosting or software services.

Service scope

• Service constraints: While Nessus vulnerability scanning offers robust security capabilities, buyers should be aware of potential constraints. These may include the need for sufficient network connectivity and access to scan targets. Additionally, certain features or configurations may require additional resources or licensing. Buyers should also consider the scalability of Nessus to accommodate large-scale scanning operations. Finally, ongoing maintenance and updates are necessary to ensure the effectiveness and security of Nessus scans.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our response time to questions depends on Service Level Agreement (SLA) agreements and the ticket's priority. We prioritise swift responses based on the urgency and criticality defined in SLAs, ensuring timely resolution of inquiries. The specific SLA terms and ticket priorities guide our commitment to providing efficient and effective support to address questions promptly.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: Our Support Level Agreements (SLAs) are designed to deliver timely and effective assistance. Users benefit from dedicated cloud engineers available to answer calls and address inquiries. Our SLA categorises issues into four priority levels, each with a corresponding response time commitment. Priority 1 (P1) urgent issues receive a rapid response within 30 minutes, ensuring critical problems are swiftly addressed. High-priority (P2) concerns are attended to within 2 hours, maintaining a prompt response for significant issues. Medium (P3) priority issues receive attention within 4 hours, and low-priority (P4) matters are addressed within 8 hours. These SLAs aim to provide a structured and responsive support framework, allowing users to receive assistance tailored to the urgency and criticality of their specific needs.

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Tenable

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BRITISH ASSESSMENT BUREAU LTD
• ISO/IEC 27001 accreditation date: 01/05/2024
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • Fortinet Certified Fundamentals in Cybersecurity
  • Fortinet Certified Network Security Professional

Social Value

• Social Value:

  Social Value

  Tackling economic inequality

  Tackling economic inequality

  Tackling economic inequality within the secure nexus framework involves strategic procurement practices aimed at promoting fair wages, supporting local businesses, and fostering job opportunities for marginalised communities. By prioritising contracts with suppliers who demonstrate commitment to equitable employment practices and investing in initiatives that uplift disadvantaged groups, the secure nexus approach not only enhances economic stability but also cultivates a more inclusive and resilient society

Pricing

• Price: £200 a user a year
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rsetchfield@securenexus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.